Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2004-08-18 04:00
Updated : 2025-04-03 01:03
NVD link : CVE-2004-0235
Mitre link : CVE-2004-0235
CVE.ORG link : CVE-2004-0235
JSON object : View
Products Affected
f-secure
- f-secure_for_firewalls
- f-secure_anti-virus
- f-secure_personal_express
- f-secure_internet_security
- internet_gatekeeper
stalker
- cgpmcafee
redhat
- lha
- fedora_core
sgi
- propack
winzip
- winzip
clearswift
- mailsweeper
rarlab
- winrar
tsugio_okamoto
- lha
CWE